Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-362

CWE-362

Medium likelihood

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Parent: CWE-662 - Improper Synchronization

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

2,393 vulnerabilities with CWE-362

CVE-2018-16079 MEDIUM

Google Chrome < 69.0.3497.81 - URL Spoofing via Race Condition in Permission Prompts

CVE-2018-17244 MEDIUM

Elasticsearch Security <6.4.2 - Info Disclosure

CVE-2018-5198 HIGH

Veraport G3 - Remote Code Execution via Race Condition in API Call

CVE-2018-19489 MEDIUM

QEMU < 3.0.0 - Denial of Service via Race Condition in v9fs_wstat

CVE-2018-16867 HIGH

qemu < 3.1.0 - Path Traversal and Arbitrary File Write via MTP Filename Sanitization

CVE-2018-9519 MEDIUM

Android - Local Privilege Escalation via Race Condition in easelcomm_hw_build_scatterlist

CVE-2018-15332 HIGH

F5 BIG-IP APM <7.1.7.2 - Privilege Escalation

CVE-2018-19370 MEDIUM

Yoast SEO <9.2.0 - Command Injection

CVE-2018-9539 HIGH

Android 8.0-9 - Use-After-Free via ClearKey CAS Descrambler Race Condition

CVE-2018-6061 HIGH

Google Chrome <65.0.3325.146 - Heap Corruption

CVE-2018-15687 HIGH

Canonical Ubuntu Linux < 240 - Race Condition

CVE-2018-18559 HIGH

Linux Kernel 3.2.95-4.19 - Use-After-Free via AF_PACKET Socket Race Condition

CVE-2018-7110 MEDIUM

HPE Service Governance Framework 4.2, 4.3 - Unauthenticated Information Disclosure via Race Condition

CVE-2018-0480 MEDIUM

Cisco IOS XE - Denial of Service via Errdisable Per VLAN Feature Race Condition

CVE-2018-17972 MEDIUM

Linux Kernel < 4.18.11 - Unauthenticated Kernel Stack Information Disclosure via Procfs Race Condition

CVE-2018-9069 MEDIUM

HP 310s-14isk Firmware < 1.15 - Authenticated BIOS Flash Race Condition

CVE-2018-17364 HIGH

OTCMS 3.61 - Remote Code Execution via accBackupDir Parameter

CVE-2018-5905 HIGH

Android - Out-of-Bounds Memory Access via DIAG Services Race Condition

CVE-2018-11818 HIGH

Android - Race Condition in LUT Configuration via ioctl

CVE-2018-16976 HIGH

Gitolite < 3.6.9 - Unintended Repository Access via Race Condition in Migration Process

CVE-2018-14625 MEDIUM

Linux Kernel - Information Disclosure via AF_VSOCK Race Condition

CVE-2018-15499 MEDIUM

GEAR Software GEARAspiWDM 2.2.5.0 - Denial of Service via Race Condition in Memory Availability Check

CVE-2018-15473 MEDIUM

OpenSSH < 7.7 - User Enumeration via Authentication Request Timing

CVE-2018-8037 MEDIUM

Apache Tomcat 8.5.5-8.5.31 and 9.0.0.M9-9.0.9 - Information Disclosure via Race Condition

CVE-2018-14329 MEDIUM

HTSlib 1.8 - Local Privilege Escalation

Previous Page 70 of 96 Next

Details

Vulnerabilities 2,393

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy